Search CVE reports
131 – 140 of 1457 results
CVE-2018-16276
Medium prioritySome fixes available 22 of 24
An issue was discovered in yurex_read in drivers/usb/misc/yurex.c in the Linux kernel before 4.17.7. Local attackers could use user access read/writes with incorrect bounds checking in the yurex USB driver to crash the kernel or...
77 affected packages
linux, linux-aws, linux-aws-5.15, linux-aws-5.4, linux-aws-6.8...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-aws | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-aws-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-aws-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-aws-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-aws-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-aws-hwe | Not in release | Not in release | Not in release | Not in release | Fixed |
linux-azure | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-azure-4.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-azure-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-azure-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-azure-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-azure-edge | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-azure-fde | Not in release | Not affected | Ignored | Not in release | Not in release |
linux-azure-fde-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-azure-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-bluefield | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-euclid | — | — | — | Not in release | Ignored |
linux-fips | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-flo | — | — | — | Not in release | Ignored |
linux-gcp | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-gcp-4.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-gcp-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-gcp-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-gcp-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-gcp-edge | — | — | — | Not affected | Not in release |
linux-gcp-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-gke | Not affected | Not affected | Ignored | Not in release | Ignored |
linux-gkeop | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-gkeop-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-goldfish | — | — | — | Not in release | Ignored |
linux-grouper | — | — | — | Not in release | Not in release |
linux-hwe | Not in release | Not in release | Not in release | Not affected | Fixed |
linux-hwe-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-hwe-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-hwe-edge | Not in release | Not in release | Not in release | Not affected | Fixed |
linux-ibm | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-ibm-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-ibm-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-intel | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-intel-iot-realtime | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-intel-iotg | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-intel-iotg-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-iot | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-kvm | Not in release | Not affected | Not affected | Fixed | Fixed |
linux-lowlatency | Not affected | Not affected | Not in release | Not in release | Not in release |
linux-lowlatency-hwe-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-lts-trusty | — | — | — | Not in release | Not in release |
linux-lts-utopic | — | — | — | Not in release | Not in release |
linux-lts-vivid | — | — | — | Not in release | Not in release |
linux-lts-wily | — | — | — | Not in release | Not in release |
linux-lts-xenial | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-maguro | — | — | — | Not in release | Not in release |
linux-mako | — | — | — | Not in release | Ignored |
linux-manta | — | — | — | Not in release | Not in release |
linux-nvidia | Not affected | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-6.5 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-oem | Not in release | Not in release | Not in release | Fixed | Ignored |
linux-oem-6.8 | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-oracle | Not affected | Not affected | Not affected | Not affected | Not affected |
linux-oracle-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-oracle-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-oracle-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-raspi | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-raspi-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-raspi-realtime | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-raspi2 | Not in release | Not in release | Ignored | Fixed | Fixed |
linux-realtime | Not in release | Ignored | Not in release | Not in release | Not in release |
linux-riscv | Not affected | Ignored | Ignored | Not in release | Not in release |
linux-riscv-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-snapdragon | Not in release | Not in release | Not in release | Not affected | Fixed |
linux-xilinx-zynqmp | Not in release | Not affected | Not affected | Not in release | Not in release |
CVE-2018-14619
Medium priorityA flaw was found in the crypto subsystem of the Linux kernel before version kernel-4.15-rc4. The "null skcipher" was being dropped when each af_alg_ctx was freed instead of when the aead_tfm was freed. This can cause the...
24 affected packages
linux, linux-aws, linux-azure, linux-azure-edge, linux-euclid...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | Not affected | Not affected |
linux-aws | — | — | — | Not affected | Not affected |
linux-azure | — | — | — | Not affected | Not affected |
linux-azure-edge | — | — | — | Not affected | Not affected |
linux-euclid | — | — | — | Not in release | Not affected |
linux-flo | — | — | — | Not in release | Ignored |
linux-gcp | — | — | — | Not affected | Not affected |
linux-gke | — | — | — | Not in release | Ignored |
linux-goldfish | — | — | — | Not in release | Ignored |
linux-grouper | — | — | — | Not in release | Not in release |
linux-hwe | — | — | — | Not affected | Not affected |
linux-hwe-edge | — | — | — | Not affected | Not affected |
linux-kvm | — | — | — | Not affected | Not affected |
linux-lts-trusty | — | — | — | Not in release | Not in release |
linux-lts-utopic | — | — | — | Not in release | Not in release |
linux-lts-vivid | — | — | — | Not in release | Not in release |
linux-lts-wily | — | — | — | Not in release | Not in release |
linux-lts-xenial | — | — | — | Not in release | Not in release |
linux-maguro | — | — | — | Not in release | Not in release |
linux-mako | — | — | — | Not in release | Ignored |
linux-manta | — | — | — | Not in release | Not in release |
linux-oem | — | — | — | Not affected | Not affected |
linux-raspi2 | — | — | — | Not affected | Not affected |
linux-snapdragon | — | — | — | Not affected | Not affected |
CVE-2018-10938
Negligible prioritySome fixes available 11 of 13
A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function...
76 affected packages
linux, linux-aws, linux-aws-5.15, linux-aws-5.4, linux-aws-6.8...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | Not affected | Not affected | Not affected | Not affected | Fixed |
linux-aws | Not affected | Not affected | Not affected | Not affected | Fixed |
linux-aws-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-aws-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-aws-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-aws-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-aws-hwe | Not in release | Not in release | Not in release | Not in release | Not affected |
linux-azure | Not affected | Not affected | Not affected | Not affected | Fixed |
linux-azure-4.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-azure-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-azure-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-azure-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-azure-edge | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-azure-fde | Not in release | Not affected | Ignored | Not in release | Not in release |
linux-azure-fde-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-azure-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-bluefield | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-euclid | — | — | — | Not in release | Ignored |
linux-fips | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-flo | — | — | — | Not in release | Ignored |
linux-gcp | Not affected | Not affected | Not affected | Not affected | Fixed |
linux-gcp-4.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-gcp-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-gcp-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-gcp-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-gcp-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-gke | Not affected | Not affected | Ignored | Not in release | Ignored |
linux-gkeop | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-gkeop-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-goldfish | — | — | — | Not in release | Ignored |
linux-grouper | — | — | — | Not in release | Not in release |
linux-hwe | Not in release | Not in release | Not in release | Not affected | Fixed |
linux-hwe-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-hwe-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-hwe-edge | Not in release | Not in release | Not in release | Not affected | Fixed |
linux-ibm | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-ibm-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-ibm-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-intel | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-intel-iot-realtime | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-intel-iotg | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-intel-iotg-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-iot | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-kvm | Not in release | Not affected | Not affected | Not affected | Fixed |
linux-lowlatency | Not affected | Not affected | Not in release | Not in release | Not in release |
linux-lowlatency-hwe-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-lts-trusty | — | — | — | Not in release | Not in release |
linux-lts-utopic | — | — | — | Not in release | Not in release |
linux-lts-vivid | — | — | — | Not in release | Not in release |
linux-lts-wily | — | — | — | Not in release | Not in release |
linux-lts-xenial | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-maguro | — | — | — | Not in release | Not in release |
linux-mako | — | — | — | Not in release | Ignored |
linux-manta | — | — | — | Not in release | Not in release |
linux-nvidia | Not affected | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-6.5 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-oem | Not in release | Not in release | Not in release | Not affected | Not affected |
linux-oem-6.8 | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-oracle | Not affected | Not affected | Not affected | Not affected | Not affected |
linux-oracle-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-oracle-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-oracle-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-raspi | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-raspi-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-raspi-realtime | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-raspi2 | Not in release | Not in release | Ignored | Not affected | Fixed |
linux-realtime | Not in release | Ignored | Not in release | Not in release | Not in release |
linux-riscv | Not affected | Ignored | Ignored | Not in release | Not in release |
linux-riscv-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-snapdragon | Not in release | Not in release | Not in release | Not affected | Fixed |
linux-xilinx-zynqmp | Not in release | Not affected | Not affected | Not in release | Not in release |
CVE-2018-10902
Medium prioritySome fixes available 22 of 24
It was found that the raw midi kernel driver does not protect against concurrent access which leads to a double realloc (double free) in snd_rawmidi_input_params() and snd_rawmidi_output_status() which are part of...
77 affected packages
linux, linux-aws, linux-aws-5.15, linux-aws-5.4, linux-aws-6.8...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-aws | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-aws-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-aws-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-aws-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-aws-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-aws-hwe | Not in release | Not in release | Not in release | Not in release | Fixed |
linux-azure | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-azure-4.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-azure-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-azure-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-azure-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-azure-edge | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-azure-fde | Not in release | Not affected | Ignored | Not in release | Not in release |
linux-azure-fde-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-azure-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-bluefield | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-euclid | — | — | — | Not in release | Ignored |
linux-fips | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-flo | — | — | — | Not in release | Ignored |
linux-gcp | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-gcp-4.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-gcp-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-gcp-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-gcp-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-gcp-edge | — | — | — | Not affected | Not in release |
linux-gcp-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-gke | Not affected | Not affected | Ignored | Not in release | Ignored |
linux-gkeop | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-gkeop-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-goldfish | — | — | — | Not in release | Ignored |
linux-grouper | — | — | — | Not in release | Not in release |
linux-hwe | Not in release | Not in release | Not in release | Not affected | Fixed |
linux-hwe-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-hwe-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-hwe-edge | Not in release | Not in release | Not in release | Not affected | Fixed |
linux-ibm | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-ibm-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-ibm-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-intel | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-intel-iot-realtime | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-intel-iotg | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-intel-iotg-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-iot | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-kvm | Not in release | Not affected | Not affected | Fixed | Fixed |
linux-lowlatency | Not affected | Not affected | Not in release | Not in release | Not in release |
linux-lowlatency-hwe-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-lts-trusty | — | — | — | Not in release | Not in release |
linux-lts-utopic | — | — | — | Not in release | Not in release |
linux-lts-vivid | — | — | — | Not in release | Not in release |
linux-lts-wily | — | — | — | Not in release | Not in release |
linux-lts-xenial | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-maguro | — | — | — | Not in release | Not in release |
linux-mako | — | — | — | Not in release | Ignored |
linux-manta | — | — | — | Not in release | Not in release |
linux-nvidia | Not affected | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-6.5 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-oem | Not in release | Not in release | Not in release | Fixed | Ignored |
linux-oem-6.8 | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-oracle | Not affected | Not affected | Not affected | Not affected | Not affected |
linux-oracle-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-oracle-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-oracle-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-raspi | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-raspi-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-raspi-realtime | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-raspi2 | Not in release | Not in release | Ignored | Fixed | Fixed |
linux-realtime | Not in release | Ignored | Not in release | Not in release | Not in release |
linux-riscv | Not affected | Ignored | Ignored | Not in release | Not in release |
linux-riscv-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-snapdragon | Not in release | Not in release | Not in release | Not affected | Fixed |
linux-xilinx-zynqmp | Not in release | Not affected | Not affected | Not in release | Not in release |
CVE-2018-15594
High prioritySome fixes available 21 of 24
arch/x86/kernel/paravirt.c in the Linux kernel before 4.18.1 mishandles certain indirect calls, which makes it easier for attackers to conduct Spectre-v2 attacks against paravirtual guests.
24 affected packages
linux, linux-aws, linux-azure, linux-azure-edge, linux-euclid...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | Fixed | Fixed |
linux-aws | — | — | — | Fixed | Fixed |
linux-azure | — | — | — | Fixed | Fixed |
linux-azure-edge | — | — | — | Not affected | Fixed |
linux-euclid | — | — | — | Not in release | Not affected |
linux-flo | — | — | — | Not in release | Ignored |
linux-gcp | — | — | — | Fixed | Fixed |
linux-gke | — | — | — | Not in release | Ignored |
linux-goldfish | — | — | — | Not in release | Ignored |
linux-grouper | — | — | — | Not in release | Not in release |
linux-hwe | — | — | — | Not affected | Fixed |
linux-hwe-edge | — | — | — | Not affected | Fixed |
linux-kvm | — | — | — | Fixed | Fixed |
linux-lts-trusty | — | — | — | Not in release | Not in release |
linux-lts-utopic | — | — | — | Not in release | Not in release |
linux-lts-vivid | — | — | — | Not in release | Not in release |
linux-lts-wily | — | — | — | Not in release | Not in release |
linux-lts-xenial | — | — | — | Not in release | Not in release |
linux-maguro | — | — | — | Not in release | Not in release |
linux-mako | — | — | — | Not in release | Ignored |
linux-manta | — | — | — | Not in release | Not in release |
linux-oem | — | — | — | Fixed | Ignored |
linux-raspi2 | — | — | — | Fixed | Fixed |
linux-snapdragon | — | — | — | Not affected | Fixed |
CVE-2018-15572
High prioritySome fixes available 21 of 25
The spectre_v2_select_mitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it easier for attackers to conduct...
27 affected packages
linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-edge...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | Fixed | Fixed |
linux-aws | — | — | — | Fixed | Fixed |
linux-aws-hwe | — | — | — | Not in release | Not affected |
linux-azure | — | — | — | Fixed | Fixed |
linux-azure-edge | — | — | — | Fixed | Fixed |
linux-euclid | — | — | — | Not in release | Ignored |
linux-flo | — | — | — | Not in release | Ignored |
linux-gcp | — | — | — | Fixed | Fixed |
linux-gcp-edge | — | — | — | Not affected | Not in release |
linux-gke | — | — | — | Not in release | Ignored |
linux-goldfish | — | — | — | Not in release | Ignored |
linux-grouper | — | — | — | Not in release | Not in release |
linux-hwe | — | — | — | Not affected | Fixed |
linux-hwe-edge | — | — | — | Not affected | Fixed |
linux-kvm | — | — | — | Fixed | Fixed |
linux-lts-trusty | — | — | — | Not in release | Not in release |
linux-lts-utopic | — | — | — | Not in release | Not in release |
linux-lts-vivid | — | — | — | Not in release | Not in release |
linux-lts-wily | — | — | — | Not in release | Not in release |
linux-lts-xenial | — | — | — | Not in release | Not in release |
linux-maguro | — | — | — | Not in release | Not in release |
linux-mako | — | — | — | Not in release | Ignored |
linux-manta | — | — | — | Not in release | Not in release |
linux-oem | — | — | — | Fixed | Ignored |
linux-oracle | — | — | — | Not affected | Not affected |
linux-raspi2 | — | — | — | Fixed | Fixed |
linux-snapdragon | — | — | — | Not affected | Fixed |
CVE-2018-15471
High prioritySome fixes available 20 of 23
An issue was discovered in xenvif_set_hash_mapping in drivers/net/xen-netback/hash.c in the Linux kernel through 4.18.1, as used in Xen through 4.11.x and other products. The Linux netback driver allows frontends to control...
27 affected packages
linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-edge...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | Fixed | Not affected |
linux-aws | — | — | — | Fixed | Not affected |
linux-aws-hwe | — | — | — | Not in release | Not affected |
linux-azure | — | — | — | Fixed | Fixed |
linux-azure-edge | — | — | — | Not affected | Fixed |
linux-euclid | — | — | — | Not in release | Not affected |
linux-flo | — | — | — | Not in release | Ignored |
linux-gcp | — | — | — | Fixed | Fixed |
linux-gcp-edge | — | — | — | Not affected | Not in release |
linux-gke | — | — | — | Not in release | Ignored |
linux-goldfish | — | — | — | Not in release | Ignored |
linux-grouper | — | — | — | Not in release | Not in release |
linux-hwe | — | — | — | Not affected | Fixed |
linux-hwe-edge | — | — | — | Not affected | Fixed |
linux-kvm | — | — | — | Fixed | Not affected |
linux-lts-trusty | — | — | — | Not in release | Not in release |
linux-lts-utopic | — | — | — | Not in release | Not in release |
linux-lts-vivid | — | — | — | Not in release | Not in release |
linux-lts-wily | — | — | — | Not in release | Not in release |
linux-lts-xenial | — | — | — | Not in release | Not in release |
linux-maguro | — | — | — | Not in release | Not in release |
linux-mako | — | — | — | Not in release | Ignored |
linux-manta | — | — | — | Not in release | Not in release |
linux-oem | — | — | — | Fixed | Ignored |
linux-oracle | — | — | — | Not affected | Not affected |
linux-raspi2 | — | — | — | Fixed | Not affected |
linux-snapdragon | — | — | — | Not affected | Not affected |
CVE-2018-3646
High prioritySome fixes available 20 of 22
Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via...
78 affected packages
intel-microcode, linux, linux-aws, linux-aws-5.15, linux-aws-5.4...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
intel-microcode | Not affected | Not affected | Not affected | Fixed | Fixed |
linux | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-aws | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-aws-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-aws-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-aws-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-aws-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-aws-hwe | Not in release | Not in release | Not in release | Not in release | Not affected |
linux-azure | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-azure-4.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-azure-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-azure-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-azure-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-azure-edge | Not in release | Not in release | Not in release | Fixed | Not in release |
linux-azure-fde | Not in release | Not affected | Ignored | Not in release | Not in release |
linux-azure-fde-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-azure-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-bluefield | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-euclid | — | — | — | Not in release | Ignored |
linux-fips | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-flo | — | — | — | Not in release | Ignored |
linux-gcp | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-gcp-4.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-gcp-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-gcp-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-gcp-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-gcp-edge | — | — | — | Not affected | Not in release |
linux-gcp-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-gke | Not affected | Not affected | Ignored | Not in release | Ignored |
linux-gkeop | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-gkeop-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-goldfish | — | — | — | Not in release | Ignored |
linux-grouper | — | — | — | Not in release | Not in release |
linux-hwe | Not in release | Not in release | Not in release | Not affected | Fixed |
linux-hwe-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-hwe-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-hwe-edge | Not in release | Not in release | Not in release | Not affected | Fixed |
linux-ibm | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-ibm-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-ibm-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-intel | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-intel-iot-realtime | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-intel-iotg | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-intel-iotg-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-iot | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-kvm | Not in release | Not affected | Not affected | Fixed | Fixed |
linux-lowlatency | Not affected | Not affected | Not in release | Not in release | Not in release |
linux-lowlatency-hwe-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-lts-trusty | — | — | — | Not in release | Not in release |
linux-lts-utopic | — | — | — | Not in release | Not in release |
linux-lts-vivid | — | — | — | Not in release | Not in release |
linux-lts-wily | — | — | — | Not in release | Not in release |
linux-lts-xenial | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-maguro | — | — | — | Not in release | Not in release |
linux-mako | — | — | — | Not in release | Ignored |
linux-manta | — | — | — | Not in release | Not in release |
linux-nvidia | Not affected | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-6.5 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-oem | Not in release | Not in release | Not in release | Fixed | Ignored |
linux-oem-6.8 | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-oracle | Not affected | Not affected | Not affected | Not affected | Not affected |
linux-oracle-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-oracle-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-oracle-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-raspi | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-raspi-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-raspi-realtime | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-raspi2 | Not in release | Not in release | Ignored | Not affected | Not affected |
linux-realtime | Not in release | Ignored | Not in release | Not in release | Not in release |
linux-riscv | Not affected | Ignored | Ignored | Not in release | Not in release |
linux-riscv-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-snapdragon | Not in release | Not in release | Not in release | Not affected | Not affected |
linux-xilinx-zynqmp | Not in release | Not affected | Not affected | Not in release | Not in release |
CVE-2018-3620
High prioritySome fixes available 17 of 19
Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault...
77 affected packages
linux, linux-aws, linux-aws-5.15, linux-aws-5.4, linux-aws-6.8...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-aws | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-aws-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-aws-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-aws-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-aws-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-aws-hwe | Not in release | Not in release | Not in release | Not in release | Not affected |
linux-azure | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-azure-4.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-azure-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-azure-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-azure-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-azure-edge | Not in release | Not in release | Not in release | Fixed | Not in release |
linux-azure-fde | Not in release | Not affected | Ignored | Not in release | Not in release |
linux-azure-fde-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-azure-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-bluefield | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-euclid | — | — | — | Not in release | Ignored |
linux-fips | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-flo | — | — | — | Not in release | Ignored |
linux-gcp | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-gcp-4.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-gcp-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-gcp-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-gcp-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-gcp-edge | — | — | — | Not affected | Not in release |
linux-gcp-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-gke | Not affected | Not affected | Ignored | Not in release | Ignored |
linux-gkeop | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-gkeop-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-goldfish | — | — | — | Not in release | Ignored |
linux-grouper | — | — | — | Not in release | Not in release |
linux-hwe | Not in release | Not in release | Not in release | Not affected | Fixed |
linux-hwe-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-hwe-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-hwe-edge | Not in release | Not in release | Not in release | Not affected | Fixed |
linux-ibm | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-ibm-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-ibm-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-intel | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-intel-iot-realtime | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-intel-iotg | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-intel-iotg-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-iot | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-kvm | Not in release | Not affected | Not affected | Fixed | Fixed |
linux-lowlatency | Not affected | Not affected | Not in release | Not in release | Not in release |
linux-lowlatency-hwe-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-lts-trusty | — | — | — | Not in release | Not in release |
linux-lts-utopic | — | — | — | Not in release | Not in release |
linux-lts-vivid | — | — | — | Not in release | Not in release |
linux-lts-wily | — | — | — | Not in release | Not in release |
linux-lts-xenial | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-maguro | — | — | — | Not in release | Not in release |
linux-mako | — | — | — | Not in release | Ignored |
linux-manta | — | — | — | Not in release | Not in release |
linux-nvidia | Not affected | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-6.5 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-oem | Not in release | Not in release | Not in release | Fixed | Ignored |
linux-oem-6.8 | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-oracle | Not affected | Not affected | Not affected | Not affected | Not affected |
linux-oracle-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-oracle-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-oracle-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-raspi | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-raspi-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-raspi-realtime | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-raspi2 | Not in release | Not in release | Ignored | Not affected | Not affected |
linux-realtime | Not in release | Ignored | Not in release | Not in release | Not in release |
linux-riscv | Not affected | Ignored | Ignored | Not in release | Not in release |
linux-riscv-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-snapdragon | Not in release | Not in release | Not in release | Not affected | Not affected |
linux-xilinx-zynqmp | Not in release | Not affected | Not affected | Not in release | Not in release |
CVE-2018-3615
Medium prioritySystems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local...
24 affected packages
linux, linux-aws, linux-azure, linux-azure-edge, linux-euclid...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | Not affected | Not affected |
linux-aws | — | — | — | Not affected | Not affected |
linux-azure | — | — | — | Not affected | Not affected |
linux-azure-edge | — | — | — | Not affected | Not affected |
linux-euclid | — | — | — | Not in release | Not affected |
linux-flo | — | — | — | Not in release | Ignored |
linux-gcp | — | — | — | Not affected | Not affected |
linux-gke | — | — | — | Not in release | Ignored |
linux-goldfish | — | — | — | Not in release | Not affected |
linux-grouper | — | — | — | Not in release | Not in release |
linux-hwe | — | — | — | Not affected | Not affected |
linux-hwe-edge | — | — | — | Not affected | Not affected |
linux-kvm | — | — | — | Not affected | Not affected |
linux-lts-trusty | — | — | — | Not in release | Not in release |
linux-lts-utopic | — | — | — | Not in release | Not in release |
linux-lts-vivid | — | — | — | Not in release | Not in release |
linux-lts-wily | — | — | — | Not in release | Not in release |
linux-lts-xenial | — | — | — | Not in release | Not in release |
linux-maguro | — | — | — | Not in release | Not in release |
linux-mako | — | — | — | Not in release | Ignored |
linux-manta | — | — | — | Not in release | Not in release |
linux-oem | — | — | — | Not affected | Not affected |
linux-raspi2 | — | — | — | Not affected | Not affected |
linux-snapdragon | — | — | — | Not affected | Not affected |